An open-source fingerprinting core with premium plugins for production enforcement.
FP-Devicer computes a calibrated 0-100 confidence score between fingerprint datasets using recursive weighted comparison, TLSH similarity, evidence richness, field agreement, entropy, and missingness heuristics. Around that core, premium plugins extend identity decisions with IP intelligence, TLS consistency, bot blocking, and peer reputation networking.
Client-side fingerprints are useful, but production decisions need server-side memory, cross-session correlation, and enrichment from network and behavioral signals.
Cookies reset, private mode strips persistence, and the same user can arrive through multiple browsers or sessions. Identity logic needs more than a client-generated hash.
Modern abuse flows through headless browsers, VPNs, rotating proxies, suspicious TLS stacks, and clustered infrastructure that bypasses shallow checks.
Enterprises need confidence calibration, historical drift analysis, candidate indexing, and graph-aware risk propagation before acting on a request.
Start with the open-source scoring engine, then add premium middleware modules where you need deeper identity, abuse detection, and trust propagation.
The TypeScript core provides the confidence calculator, DeviceManager orchestration layer, pluggable storage adapters, adaptive stability weighting, temporal decay, drift analysis, and candidate retrieval primitives.
Build with an open-source core, then layer enterprise middleware only where needed.
Adds MaxMind geo and ASN enrichment, proxy and VPN classification, Tor and hosting detection, AI-agent tagging, impossible-travel alerts, and IP history consistency scoring.
Designed for production IP intelligence, not just IP logging.
Passively consumes JA4, JA3, JA3S, cipher order, extension order, HTTP/2 settings, and header consistency from your edge so you can compare TLS behavior against historical device snapshots.
Bring JA4-grade network consistency into device matching without moving logic into the browser.
Bot Blocking & Anti-Scrape middleware classifies real browsers, headless browsers, scrapers, and known crawlers, then emits an allow, challenge, or block decision through a configurable rules engine.
Move from ad hoc heuristics to explainable abuse decisions with named scoring factors.
Builds a peer graph across shared IP subnets, user IDs, JA4 fingerprints, canvas hashes, and WebGL hashes, then propagates trust and taint signals across related devices.
Spot suspicious clusters instead of evaluating every request as an isolated event.
The suite is designed for real traffic, persistent history, and explainable score adjustments across the whole request pipeline.
Designed for Express, Fastify, Deno/Oak, and other server environments where the intelligence belongs on the backend.
Run locally with in-memory or SQLite, then scale to PostgreSQL or Redis without rewriting matching logic.
Register custom comparators and weights per field path so the core score model can reflect your own signals.
Confidence fades gracefully as snapshots age, preventing old history from dominating current decisions.
MinHash locality-sensitive hashing over set-valued fields reduces candidate search costs at higher scale.
Inject your own logger and metrics backends while keeping the suite modular and deployment-friendly.
FP-Devicer stays open source. Premium plugins extend enterprise functionality through Business Source License 1.1 tiers and a shared Polar checkout flow.
IP geoenrichment, ASN context, proxy detection, AI-agent tagging, and travel-risk alerts.
Production use requires a paid license. The same Polar license key works across all premium plugins.
JA4 and JA3 ingestion, cipher and extension similarity, HTTP/2 settings, and header consistency.
Production use requires a paid license. The same Polar license key works across all premium plugins.
Bot scoring and rule-driven allow, challenge, or block decisions for anti-scrape enforcement.
Production use requires a paid license. The same Polar license key works across all premium plugins.
Peer graph linking, taint and trust propagation, and confidence adjustments from related devices.
Production use requires a paid license. The same Polar license key works across all premium plugins.
All premium plugins share the same Polar license key. The full premium lineup is designed to compose: network context first, peer propagation next, and bot enforcement last.
Use the core today, review the architecture, and add premium plugins when you need production-grade enrichment and enforcement.
Review the repository, issues, and implementation details for the FP-Devicer core library.
Read the architectural breakdown of the scoring engine, storage model, and plugin lifecycle.
Explore the generated TypeDoc reference for the FP-Devicer core and companion plugin APIs.
Reach Gateway Corporate for deployment planning, plugin licensing, and enterprise integration support.
One checkout starts access to the premium Devicer middleware lineup. Use it for IP intelligence, TLS enrichment, bot blocking, and peer reputation workflows.
Buy Plugin LicenseOne Polar checkout and one shared key for the full premium plugin lineup.